---
- branch: MAIN
  date: Sun Aug 22 04:00:43 UTC 2021
  files:
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/devel/libunit/distinfo
    pathrev: pkgsrc/devel/libunit/distinfo@1.3
    type: modified
  - new: '1.4'
    old: '1.3'
    path: pkgsrc/www/unit/Makefile
    pathrev: pkgsrc/www/unit/Makefile@1.4
    type: modified
  - new: '1.3'
    old: '1.2'
    path: pkgsrc/www/unit/Makefile.common
    pathrev: pkgsrc/www/unit/Makefile.common@1.3
    type: modified
  - new: '1.2'
    old: '1.1'
    path: pkgsrc/www/unit/PLIST
    pathrev: pkgsrc/www/unit/PLIST@1.2
    type: modified
  - new: '1.2'
    old: '1.1'
    path: pkgsrc/www/unit/distinfo
    pathrev: pkgsrc/www/unit/distinfo@1.2
    type: modified
  - new: '1.2'
    old: '1.1'
    path: pkgsrc/www/unit/version.mk
    pathrev: pkgsrc/www/unit/version.mk@1.2
    type: modified
  - new: '0'
    old: '1.1'
    path: pkgsrc/www/unit/patches/patch-src_nxt__cert.c
    pathrev: pkgsrc/www/unit/patches/patch-src_nxt__cert.c@0
    type: deleted
  - new: '0'
    old: '1.1'
    path: pkgsrc/www/unit/patches/patch-src_nxt__conf__validation.c
    pathrev: pkgsrc/www/unit/patches/patch-src_nxt__conf__validation.c@0
    type: deleted
  - new: '0'
    old: '1.1'
    path: pkgsrc/www/unit/patches/patch-src_nxt__router.c
    pathrev: pkgsrc/www/unit/patches/patch-src_nxt__router.c@0
    type: deleted
  - new: '0'
    old: '1.1'
    path: pkgsrc/www/unit/patches/patch-src_nxt__unit.c
    pathrev: pkgsrc/www/unit/patches/patch-src_nxt__unit.c@0
    type: deleted
  id: 20210822T040043Z.a91a463d43f6932f87f12f5219571e52f06c5908
  log: |
    unit & libunit: update to 1.25.0

    Changes with Unit 1.25.0                                         19 Aug 2021

        *) Feature: client IP address replacement from a specified HTTP header
           field.

        *) Feature: TLS sessions cache.

        *) Feature: TLS session tickets.

        *) Feature: application restart control.

        *) Feature: process and thread lifecycle hooks in Ruby.

        *) Bugfix: the router process could crash on TLS connection open when
           multiple listeners with TLS certificates were configured; the bug had
           appeared in 1.23.0.

        *) Bugfix: TLS connections were rejected for configurations with
           multiple certificate bundles in a listener if the client did not use
           SNI.

        *) Bugfix: the router process could crash with frequent mutithreaded
           application reconfiguration.

        *) Bugfix: compatibility issues with some Python ASGI apps, notably
           based on the Starlette framework.

        *) Bugfix: a descriptor and memory leak occurred in the router process
           when an app process stopped or crashed.

        *) Bugfix: the controller or router process could crash if the
           configuration contained a full-form IPv6 in a listener address.

        *) Bugfix: the router process crashed when a request was passed to an
           empty "routes" or "upstreams" using a variable "pass" option.

        *) Bugfix: the router process crashed while matching a request to an
           empty array of source or destination address patterns.

    Changes with Unit 1.24.0                                         27 May 2021

        *) Change: PHP added to the default MIME type list.

        *) Feature: arbitrary configuration of TLS connections via OpenSSL
           commands.

        *) Feature: the ability to limit static file serving by MIME types.

        *) Feature: support for chrooting, rejecting symlinks, and rejecting
           mount point traversal on a per-request basis when serving static
           files.

        *) Feature: a loader for automatically overriding the "http" and
           "websocket" modules in Node.js.

        *) Feature: multiple "targets" in Python applications.

        *) Feature: compatibility with Ruby 3.0.

        *) Bugfix: the router process could crash while closing a TLS
           connection.

        *) Bugfix: a segmentation fault might have occurred in the PHP module if
           fastcgi_finish_request() was used with the "auto_globals_jit" option
           enabled.

    Changes with Unit 1.23.0                                         25 Mar 2021

        *) Feature: support for multiple certificate bundles on a listener via
           the Server Name Indication (SNI) TLS extension.

        *) Feature: "--mandir" ./configure option to specify the directory for
           man page installation.

        *) Bugfix: the router process could crash on premature TLS connection
           close; the bug had appeared in 1.17.0.

        *) Bugfix: a connection leak occurred on premature TLS connection close;
           the bug had appeared in 1.6.

        *) Bugfix: a descriptor and memory leak occurred in the router process
           when processing small WebSocket frames from a client; the bug had
           appeared in 1.19.0.

        *) Bugfix: a descriptor leak occurred in the router process when
           removing or reconfiguring an application; the bug had appeared in
           1.19.0.

        *) Bugfix: persistent storage of certificates might've not worked with
           some filesystems in Linux, and all uploaded certificate bundles were
           forgotten after restart.

        *) Bugfix: the controller process could crash while requesting
           information about a certificate with a non-DNS SAN entry.

        *) Bugfix: the controller process could crash on manipulations with a
           certificate containing a SAN and no standard name attributes in
           subject or issuer.

        *) Bugfix: the Ruby module didn't respect the user locale for defaults
           in the Encoding class.

        *) Bugfix: the PHP 5 module failed to build with thread safety enabled;
           the bug had appeared in 1.22.0.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc'
  unixtime: '1629604843'
  user: gutteridge